Cloning advice for work chips

I got myself an Apex Flex, once I get it installed I’ll set it up as my key for all my personal digital stuff. But I also wish to replace my two work-chips. The one I use for the clock reads as follows:

  • UID - redacted for obvious reasons
  • Family - ICODE
  • IC Manufacturer - NXP
  • Memory Allocation - 0 Bytes
  • ISO/IEC 15693

From that I assume it just uses the UID, so should be pretty easy to clone, right?
The other chips gets a little trickier, it reads as follows:

  • UID - redacted again
  • Family - MIFARE
  • IC Manufacturer - NXP
  • IC Type - DESFire
  • IC Subtype - 70 pF
  • IC Name - EV2
  • Memory Info - 4096 Bytes
  • ISO1443-4
  • Major Version - 0x12

Now I read here and there how difficult to impossible it is to clone an EV2 chip, but I’m unsure on the specifics and if this one specifically even uses those features. I would be able to get a new registration in the system, if needed I think, depends on if we in the IT department manage it or keep that stuff to the company that we bought the system from.
Also as a note, I am completely unwilling to break the original chips in any way, because these are firmly company property.
So, can I clone these, will I need a seconday implantable DESFire chip, or what?

1 Like

It might be clonable but at the moment we don’t have any target ISO15693 magic chips to clone it to.

You won’t be able to clone this, but you might be able to enroll a new ISO14443A chip like the NTAG216 in the NExT if the system is only using the UID or allows the use of UID only for specific users.

If the system actually uses the security features of the DESFire chip, you might be able to enroll a new factory blank DESFire chip into the system, which would set up the chip for access control with that system. However, the down side to this is that the DESFire chip will basically become locked for use only with that system. You will not likely be able to get any master keys for your DESFire chip from the security system, so you’ll effectively lose access to the user programmable memory space on that chip.

2 Likes

So I’d need a magic chip to copy the UID? I guess I overestimated the programmability of the chips. I could test if the reader reads other standards too, idk if that helps. We do use that chip on several different systems (print server, another access control thing, and the clock) so it might not be hyper specific. I know at the top of my head that at least one of those readers at least read the ISO14443A chip too, idk if they commonly check the standard too for verification.

Yep, then that will remain in my pocket then. I checked and we get the chips enrolled by the techs who installed the system.

1 Like

Well the user memory is programmable but the entire premise of the UID is that it is a Unique ID which is set by the chip manufacturer. The ability to just copy what is effectively the chips unique aerial number to another chip goes against the fundamental concept of a unique ID… so of course only grey market Chinese manufacturers produce “magic” chips for HF applications that allow the UID to be changed, enabling the copying of a UID from another chip.

that’s a lot of different systems, but my hunch is that one of those readers prob won’t support iso14443a… but worth a shot?

2 Likes

Reusing things even when it’s not fit for purpose at all is basically all my city does, every government institution works that way. Securing things properly is something I tried to push on, but I honestly gave up at this point.

Once I’ll start Uni, I’ll work on cloning whatever they use. Looking forward to that.
Thanks for all the info!

3 Likes

Some other options for you.

There exists other magic cards that should suit your ones, but only if it is UID based.
The cards will cost you approx $20each

You could test them in card form, if they don’t work, you have only lost $20 but gained knowledge and a new test card, BUT if they work, you could look at DT’s custom work and get them converted to flex implants.

here are links to one supplier, but there are others available

2 Likes